михаил кондрашин

  • View
    1.517

  • Download
    1

Embed Size (px)

Transcript

  • 1. NAV APTNetworkAnalysis & Visualization AdvancedPersistentThreat
    APL

2.
Advanced Persistent Threat (APT)
APT
?

3. Advanced Persistent Threat

4.
ROI
-


5. APT





APT (Advanced Persistent Threat ) ,
, The 451 Group
6.
7. Stuxnet





8. Aurora
9. RSA
2011 Recruitment Plan ( , );
Excel Flash. 0-day (CVE 20110609), .
, , .
( -).
10.
AV/FW/IDS/IPS/DLP/
NAV/NSM
!
11.
DMZ
12. ,
13. ?



14. 15. NAV & NSM





Network Analysis & VisualizationNetwork Security Monitoring
16.





1.
17. Trend Micro Threat Intelligence Manager
18. !
EmpoweredEmployees
& Wikileaks
AdvancedTargeted Threats
De-Perimeterization
Virtualization,Cloud, Consumerization & Mobility
i.e., Stuxnet, Epsilon, Aurora, Mariposa, Zeus,
Sony PlayStation, etc.
19. Threat Intelligence Manager
Office Scan
Incident Discovery
Threat Discovery Appliance
Suspicious Network Behavior
Threat Intelligence Manager
Threat Analysis and Response
Deep Security
System Integrity
20.
21. Smart Protection Network
22. Fidelis XPS
23. : Deep Session Inspection
24.
, Deep Session Inspection:
,

,

25. ?
?()
?( )
?
(, )
//










26. ?
, :

27. - 28. 29. SSL/TLS 30. , 31. PDF- 32. 33.